CVE-2020-3161: Cisco IP Phones Web Server Remote Code Execution and Denial of Service Vulnerability
First published: Wed Apr 15 2020(Updated: )
A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of proper input validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web server of a targeted device. A successful exploit could allow the attacker to remotely execute code with root privileges or cause a reload of an affected IP phone, resulting in a DoS condition.
Credit: ykramarz@cisco.com psirt@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IP Phones | ||
| All of | ||
| Any of | ||
| cisco ip phone 8865 firmware | =10.3\(1\)es14 | |
| cisco ip phone 8865 firmware | =11.0\(1\) | |
| cisco ip phone 8865 firmware | =11.0\(5\)sr1 | |
| cisco ip phone 8865 | ||
| All of | ||
| Any of | ||
| Cisco IP Phone 8851 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8851 firmware | =11.0\(1\) | |
| Cisco IP Phone 8851 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8851 firmware | ||
| All of | ||
| Cisco IP Phone 7841 firmware | =11.0\(1\) | |
| Cisco IP Phone 7841 firmware | ||
| All of | ||
| Cisco IP Phone 7821 firmware | =11.0\(1\) | |
| Cisco IP Phone 7821 firmware | ||
| All of | ||
| Any of | ||
| Cisco IP Phone 8811 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8811 firmware | =11.0\(1\) | |
| Cisco IP Phone 8811 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8811 firmware | ||
| All of | ||
| Any of | ||
| cisco ip phone 8861 firmware | =10.3\(1\)es14 | |
| cisco ip phone 8861 firmware | =11.0\(1\) | |
| cisco ip phone 8861 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8861 Firmware 3PCC | ||
| All of | ||
| Any of | ||
| Cisco IP Phone 8845 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8845 firmware | =11.0\(1\) | |
| Cisco IP Phone 8845 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8845 firmware | ||
| All of | ||
| Cisco IP Phone 7861 firmware | =11.0\(1\) | |
| Cisco IP Phone 7861 firmware | ||
| All of | ||
| Any of | ||
| Cisco IP Phone 8841 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8841 firmware | =11.0\(1\) | |
| Cisco IP Phone 8841 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8841 firmware | ||
| All of | ||
| Cisco IP Phone 7811 firmware | =11.0\(1\) | |
| Cisco IP Phone 7811 firmware | ||
| All of | ||
| Any of | ||
| Cisco Wireless IP Phone 8821 Firmware | =10.3\(1\)es14 | |
| Cisco Wireless IP Phone 8821 Firmware | =11.0\(1\) | |
| Cisco Wireless IP Phone 8821 Firmware | =11.0\(5\)sr1 | |
| Cisco Wireless IP Phone 8821-EX | ||
| All of | ||
| Any of | ||
| Cisco Wireless IP Phone 8821-EX firmware | =10.3\(1\)es14 | |
| Cisco Wireless IP Phone 8821-EX firmware | =11.0\(1\) | |
| Cisco Wireless IP Phone 8821-EX firmware | =11.0\(5\)sr1 | |
| Cisco Wireless IP Phone 8821-EX | ||
| All of | ||
| Any of | ||
| Cisco 8831 Firmware | =10.3\(1\)es14 | |
| Cisco 8831 Firmware | =11.0\(1\) | |
| Cisco 8831 Firmware | =11.0\(5\)sr1 | |
| Cisco 8831 Firmware | ||
| cisco ip phone 8865 firmware | =10.3\(1\)es14 | |
| cisco ip phone 8865 firmware | =11.0\(1\) | |
| cisco ip phone 8865 firmware | =11.0\(5\)sr1 | |
| cisco ip phone 8865 | ||
| Cisco IP Phone 8851 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8851 firmware | =11.0\(1\) | |
| Cisco IP Phone 8851 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8851 firmware | ||
| Cisco IP Phone 7841 firmware | =11.0\(1\) | |
| Cisco IP Phone 7841 firmware | ||
| Cisco IP Phone 7821 firmware | =11.0\(1\) | |
| Cisco IP Phone 7821 firmware | ||
| Cisco IP Phone 8811 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8811 firmware | =11.0\(1\) | |
| Cisco IP Phone 8811 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8811 firmware | ||
| cisco ip phone 8861 firmware | =10.3\(1\)es14 | |
| cisco ip phone 8861 firmware | =11.0\(1\) | |
| cisco ip phone 8861 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8861 Firmware 3PCC | ||
| Cisco IP Phone 8845 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8845 firmware | =11.0\(1\) | |
| Cisco IP Phone 8845 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8845 firmware | ||
| Cisco IP Phone 7861 firmware | =11.0\(1\) | |
| Cisco IP Phone 7861 firmware | ||
| Cisco IP Phone 8841 firmware | =10.3\(1\)es14 | |
| Cisco IP Phone 8841 firmware | =11.0\(1\) | |
| Cisco IP Phone 8841 firmware | =11.0\(5\)sr1 | |
| Cisco IP Phone 8841 firmware | ||
| Cisco IP Phone 7811 firmware | =11.0\(1\) | |
| Cisco IP Phone 7811 firmware | ||
| Cisco Wireless IP Phone 8821 Firmware | =10.3\(1\)es14 | |
| Cisco Wireless IP Phone 8821 Firmware | =11.0\(1\) | |
| Cisco Wireless IP Phone 8821 Firmware | =11.0\(5\)sr1 | |
| Cisco Wireless IP Phone 8821-EX | ||
| Cisco Wireless IP Phone 8821-EX firmware | =10.3\(1\)es14 | |
| Cisco Wireless IP Phone 8821-EX firmware | =11.0\(1\) | |
| Cisco Wireless IP Phone 8821-EX firmware | =11.0\(5\)sr1 | |
| Cisco Wireless IP Phone 8821-EX | ||
| Cisco 8831 Firmware | =10.3\(1\)es14 | |
| Cisco 8831 Firmware | =11.0\(1\) | |
| Cisco 8831 Firmware | =11.0\(5\)sr1 | |
| Cisco 8831 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Cisco IP Phones vulnerability?
The vulnerability ID for this Cisco IP Phones vulnerability is CVE-2020-3161.
What is the severity level of CVE-2020-3161?
CVE-2020-3161 has a severity level of 9.8 (Critical).
Who is affected by the Cisco IP Phones vulnerability?
The Cisco IP Phones vulnerability affects Cisco IP Phones with specific firmware versions.
What is the impact of CVE-2020-3161?
CVE-2020-3161 can allow an unauthenticated remote attacker to execute code with root privileges or cause a denial-of-service (DoS) condition on an affected Cisco IP Phone.
How can I fix the Cisco IP Phones vulnerability?
To fix the Cisco IP Phones vulnerability, users should update the firmware of their Cisco IP Phones to a non-vulnerable version.
- agent/type
- agent/severity
- agent/weakness
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/event
- agent/last-modified-date
- agent/source
- agent/title
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/author
- agent/tags
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- vendor/cisco
- canonical/cisco ip phones
- canonical/cisco ip phone 8865 firmware
- version/cisco ip phone 8865 firmware/10.3\(1\)es14
- version/cisco ip phone 8865 firmware/11.0\(1\)
- version/cisco ip phone 8865 firmware/11.0\(5\)sr1
- canonical/cisco ip phone 8865
- canonical/cisco ip phone 8851 firmware
- version/cisco ip phone 8851 firmware/10.3\(1\)es14
- version/cisco ip phone 8851 firmware/11.0\(1\)
- version/cisco ip phone 8851 firmware/11.0\(5\)sr1
- canonical/cisco ip phone 7841 firmware
- version/cisco ip phone 7841 firmware/11.0\(1\)
- canonical/cisco ip phone 7821 firmware
- version/cisco ip phone 7821 firmware/11.0\(1\)
- canonical/cisco ip phone 8811 firmware
- version/cisco ip phone 8811 firmware/10.3\(1\)es14
- version/cisco ip phone 8811 firmware/11.0\(1\)
- version/cisco ip phone 8811 firmware/11.0\(5\)sr1
- canonical/cisco ip phone 8861 firmware
- version/cisco ip phone 8861 firmware/10.3\(1\)es14
- version/cisco ip phone 8861 firmware/11.0\(1\)
- version/cisco ip phone 8861 firmware/11.0\(5\)sr1
- canonical/cisco ip phone 8861 firmware 3pcc
- canonical/cisco ip phone 8845 firmware
- version/cisco ip phone 8845 firmware/10.3\(1\)es14
- version/cisco ip phone 8845 firmware/11.0\(1\)
- version/cisco ip phone 8845 firmware/11.0\(5\)sr1
- canonical/cisco ip phone 7861 firmware
- version/cisco ip phone 7861 firmware/11.0\(1\)
- canonical/cisco ip phone 8841 firmware
- version/cisco ip phone 8841 firmware/10.3\(1\)es14
- version/cisco ip phone 8841 firmware/11.0\(1\)
- version/cisco ip phone 8841 firmware/11.0\(5\)sr1
- canonical/cisco ip phone 7811 firmware
- version/cisco ip phone 7811 firmware/11.0\(1\)
- canonical/cisco wireless ip phone 8821 firmware
- version/cisco wireless ip phone 8821 firmware/10.3\(1\)es14
- version/cisco wireless ip phone 8821 firmware/11.0\(1\)
- version/cisco wireless ip phone 8821 firmware/11.0\(5\)sr1
- canonical/cisco wireless ip phone 8821-ex
- canonical/cisco wireless ip phone 8821-ex firmware
- version/cisco wireless ip phone 8821-ex firmware/10.3\(1\)es14
- version/cisco wireless ip phone 8821-ex firmware/11.0\(1\)
- version/cisco wireless ip phone 8821-ex firmware/11.0\(5\)sr1
- canonical/cisco 8831 firmware
- version/cisco 8831 firmware/10.3\(1\)es14
- version/cisco 8831 firmware/11.0\(1\)
- version/cisco 8831 firmware/11.0\(5\)sr1